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IN THE CLAIMS 

This listing of claims will replace all prior versions, and listings, of claims in the 
application. An identifier indicating the status of each claim is provided. 



Listing of Claims 

1 . (Currently Amended) A data transmission controlling method for 
controlling transmission of data from data transmitting means to data receiving means over at 
least first and second communication channels, said data transmission controlling method 

comprising the steps of: 

transmitting encrypted data, encrypted by said data transmitting means,, to said 
data receiving means over said-ajirst communication channel provided for data transmission 
from said data transmitting means to said data receiving means; 

whoroin prior to transmitting said encrypted data over said first communication 
channel, said data transmitting moans encapsulates data to b e transmitted from said data 
transmitting moans to data rec e iving means into data capsules in accordance with a first protocol 

and a second protocol; 

wherein said data to bo transmitt e d is first encap s ulated in accordance with said 
first protocol and further encapsulated in accordanc e with said second protocol; 

wherein at least one of said data capsules resulting from the encapsulation is 

encrypt e d; and 

wh e rein said data transmitting means supplements an encrypted data section with 
a section header containing destination address information; and 
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transmitting to said data receiving means restrictive data transmission control 
information for causing the encrypted data to be received solely by specific data receiving means 
at least to said data receiving means over saki-a_second communication channel which, having a 
smaller capacity of data transmission than said first communication channel, said second 
communication channel including communication chann e ls installed independently of said first 
communication chann e l is also used for data transmission from said data receiving means to said 

data transmitting means ; and 

requesting for said restrictive data transmission control information by said data 
receiving means when a new data receiving means is added to said communication channels, 
where said data receiving means having been put out of service and recovered from a failure 
rejoins said communication channels or when said data receiving means has failed to receive said 
restrictive data transmission control information. 

wherein said restrictiv e data transmission control information transmitted over 
said second communication channel is op e rating to allow only intend e d data r e c e iving m e ans to 
receive the e ncrypted data, and is configured to substantially simplify decryption of the 
encrypt e d data transmitted ov e r said first communication chann e l 



2. (Previously Presented) The data transmission controlling method 
according to claim 1, wherein said second communication channel is a communication channel 
permitting bidirectional communication between said data transmitting means and said data 
receiving means. 



4 of 13 



00434984 



U.S. Appln. No. 09/309,412 PATENT 
Reply to Office Action dated December 29, 2006 450100-4879 

3. (Previously Presented) The data transmission controlling method 
according to claim 1 , wherein said data transmitting means performs data encryption using an 
encryption key and wherein said encrypted data from said data transmitting means are decrypted 
by said data receiving means utilizing a decryption key identical to said encryption key used in 
the data encryption. 

4. (Previously Presented) The data transmission controlling method 
according to claim 3, wherein said encryption key and said decryption key are session keys for 
encrypting and decrypting information and data. 

5. (Previously Presented) The data transmission controlling method 
according to claim 4, wherein said session keys are updated at predetermined intervals. 

6. (Previously Presented) The data transmission controlling method 
according to claim 4, wherein said data transmitting means and said data receiving means have a 
master key specific to said data receiving means; 

wherein said data transmitting means encrypts said session keys using said master 
key and transmits the encrypted session keys to said data receiving means over either said first 
communication channel or said second communication channel; and 

wherein said data receiving means decrypts said encrypted session keys received 
using said master key. 
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7. (Previously Presented) The data transmission controlling method 
according to claim 6, wherein said data transmitting means possesses said session keys 
corresponding to all data receiving means authorized to receive specific information and data; 
and 

wherein said data transmitting means transmits in advance said session keys to 
said data receiving means authorized to receive specific information and data. 

8. (Previously Presented) The data transmission controlling method 
according to claim 1, wherein said first communication channel is a satellite link permitting 
unidirectional communication from said data transmitting means to said data receiving means; 
and 

wherein said second communication channel is a communication channel 
permitting bidirectional communication between said data transmitting means and said data 
receiving means. 

9. (Previously Presented) The data transmission controlling method 
according to claim 1, wherein said data receiving means is constituted as an IP router. 

1 0. (Previously Presented) The data transmission controlling method 
according to claim 1 , wherein said data receiving means is constituted as a bridge. 
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1 1 . (Currently Amended) A data transmission system comprising: 

data transmitting means for encrypting and transmitting data; 

data receiving means for receiving said encrypted data from said data transmitting 

means; 

a first communication channel used to transmit said encrypted data from said data 
transmitting means to said data receiving means; 

wherein prior to transmitting said encrypted data over said first communication 
chann e l, said data transmitting m e ans e ncapsulates data to b e transmitt e d from said data 
transmitting means to data receiving means into data capsules in accordance with a first protocol 

and a s e cond protocol; 

wherein said data to be transmitted is first e ncapsulated in accordance with said 
first protocol and furth e r encapsulated in accordance with said second protocol; 

wherein at least one of said data capsules resulting from the encapsulation is 

encrypt e d; and 

wherein said data transmitting means supplements an encrypted data section with 
a section h e ad e r containing destination addr e ss information; and 

a second communication channel having a smaller capacity of data transmission 
than said first communication channel, said second communication channel used to transmit to 
said data receiving means, restrictive data transmission control information to said data receiving 
meaas- for causing the encrypted data to be received solely by specific data receiving means and 
said second communication channel also being used for data transmission from said data 
receiving means to said data transmitting means including communication chann e ls installed 
independently of said first communication channel ; 
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wherein said data receiving means requests said restrictive data transmission 
control information when a new data receiving means is added to said communic ation channels. 
where said data receiving means having been put out of service and recovered fro m a failure 
rejoins said communication channels or when said data receiving means has failed to receive said 
restrictive data transmission control information. 

whoroin said restrictiv e data transmission control information transmitted ov e r 
said second communication channel is operating to allow only intend e d data receiving means to 
receive said encrypted data, and is configured to substantially simplify decryption of said 
encrypted data transmitted over said first communication channel. 

12. (Previously Presented) The data transmission system according to claim 

1 1 , wherein said data transmitting means performs data encryption using an encryption key and 
wherein said encrypted data from said data transmitting means are decrypted by said data 
receiving means utilizing a decryption key identical to said encryption key used in the data 
encryption. 

1 3. (Previously Presented) The data transmission system according to claim 

12, wherein said encryption key and said decryption key are session keys for encrypting and 
decrypting information and data. 

14. (Previously Presented) The data transmission system according to claim 

13, wherein said session keys are updated at predetermined intervals. 
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15. (Previously Presented) The data transmission system according to claim 
13, wherein said data transmitting means and said data receiving means have a master key 
specific to said data receiving means; 

wherein said data transmitting means encrypts said session keys using said master 
key and transmits the encrypted session keys to said data receiving means over either said first 
communication channel or said second communication channel; and 

wherein said data receiving means decrypts said encrypted session keys received 
using said master key. 

16. (Previously Presented) The data transmission system according to claim 
15, wherein said data transmitting means possesses said session keys corresponding to all data 
receiving means authorized to receive specific information and data; and 

wherein said data transmitting means transmits in advance said session keys to 
said data receiving means authorized to receive specific information and data. 

17. (Previously Presented) The data transmission system according to claim 
1 1 , wherein said first communication channel is a satellite link permitting unidirectional 
communication from said data transmitting means to said data receiving means. 



18. (Previously Presented) The data transmission system according to claim 
1 1 , wherein said data receiving means is constituted as an IP router. 

19. (Previously Presented) The data transmission system according to claim 
1 1 , wherein said data receiving means is constituted as a bridge. 
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